Tag: resilience

Die Gnadenfrist von NIS2 läuft ab

Nov 17, 2025 1:49 PM

Tags: cyersecurity, nis-2, resilience

Endlich, möchte man sagen, kommt Bewegung in den NIS2-Prozess. Nach mehr als einem Jahr Verzögerung hat der Bundestag das NIS2-Umsetzungsgesetz verabschiedet. Die EU-Richtlinie zur Netzwerk- und Informationssicherheit zielt darauf ab, europaweit einheitliche Mindeststandards für Cybersicherheit zu etablieren und die Resilienz kritischer Infrastrukturen zu stärken. Betroffen sind Schätzungen zufolge rund 40.000 Unternehmen aus 18 Sektoren, die…
KRITIS braucht Resilienz – KI als Schutzschild für die Energieversorgung

Nov 17, 2025 11:49 AM

Tags: ai, kritis, resilience

First seen on security-insider.de Jump to article: www.security-insider.de/it-ot-konvergenz-cyberangriffe-energiesektor-a-fa3e56e3a282389548dc39b6776e1785/
The tech that turns supply chains from brittle to unbreakable

Nov 17, 2025 8:49 AM

Tags: ciso, resilience, supply-chain

In this Help Net Security interview, Sev Kelian, CISO and VP of Security at Tecsys, discusses how organizations can strengthen supply chain resilience through a more unified … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/17/sev-kelian-tecsys-supply-chain-resilience-strategy/
Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks

Nov 14, 2025 4:49 PM

Tags: access, advisory, ai, antivirus, application-security, attack, authentication, backup, business, chatgpt, cisa, ciso, cloud, compliance, control, corporate, cve, cyber, cybersecurity, data, defense, detection, encryption, endpoint, exploit, finance, firewall, flaw, framework, germany, group, guide, healthcare, infrastructure, injection, Internet, iot, law, malware, mfa, mitigation, phishing, privacy, programming, ransomware, resilience, risk, service, soc, software, supply-chain, tactics, technology, threat, tool, update, vulnerability

Learn why you should revise your Akira ransomware protection plans. Plus, find out what’s new in OWASP’s revamped Top 10 Web Application Risks list. Also, find out about agentic AI’s cognitive degradation risk. And get the latest on AI security trends and CISO compensation. Key takeaways CISA and other agencies are urging organizations, especially in…
Cybersecurity Snapshot: Refresh Your Akira Defenses Now, CISA Says, as OWASP Revamps Its App Sec Top 10 Risks

Nov 14, 2025 4:49 PM

Tags: access, advisory, ai, antivirus, application-security, attack, authentication, backup, business, chatgpt, cisa, ciso, cloud, compliance, control, corporate, cve, cyber, cybersecurity, data, defense, detection, encryption, endpoint, exploit, finance, firewall, flaw, framework, germany, group, guide, healthcare, infrastructure, injection, Internet, iot, law, malware, mfa, mitigation, phishing, privacy, programming, ransomware, resilience, risk, service, soc, software, supply-chain, tactics, technology, threat, tool, update, vulnerability

Learn why you should revise your Akira ransomware protection plans. Plus, find out what’s new in OWASP’s revamped Top 10 Web Application Risks list. Also, find out about agentic AI’s cognitive degradation risk. And get the latest on AI security trends and CISO compensation. Key takeaways CISA and other agencies are urging organizations, especially in…
Press Release: CIO100 and CSO30 ASEAN Awards Gala 2025 Celebrate Regional Excellence in Technology Leadership

Nov 14, 2025 8:49 AM

Tags: ai, business, cio, computer, cyber, cybersecurity, defense, finance, framework, group, healthcare, insurance, intelligence, international, resilience, service, technology

The CIO100 and CSO30 ASEAN and Hong Kong Awards Gala on November 12, 2025, delivered a powerful validation of the region’s technology leadership maturity. CIO ASEAN and CSO ASEAN had the privilege of hosting an evening that brought together the most elite CIO100 and CSO30 award winners, and technology teams from Singapore, Malaysia, Indonesia, Vietnam,…
Press Release: CIO100 and CSO30 ASEAN Awards Gala 2025 Celebrate Regional Excellence in Technology Leadership

Nov 14, 2025 8:49 AM

Tags: ai, business, cio, computer, cyber, cybersecurity, defense, finance, framework, group, healthcare, insurance, intelligence, international, resilience, service, technology

The CIO100 and CSO30 ASEAN and Hong Kong Awards Gala on November 12, 2025, delivered a powerful validation of the region’s technology leadership maturity. CIO ASEAN and CSO ASEAN had the privilege of hosting an evening that brought together the most elite CIO100 and CSO30 award winners, and technology teams from Singapore, Malaysia, Indonesia, Vietnam,…
KI-Agenten am Arbeitsplatz machen Identity Resilience unerlässlich

Nov 14, 2025 6:49 AM

Tags: ai, identity, resilience

Angreifer brechen nicht mehr ein; sie melden sich einfach an. Eine neue Studie zeigt eine besorgniserregende Lücke zwischen der wachsenden Angriffsfläche für Identitätsdiebstahl und der Fähigkeit von Unternehmen, sich von Kompromittierungen zu erholen [1]. Die KI-Welle führt zu einer Zunahme von KI-Agenten am Arbeitsplatz und damit zu mehr nicht-menschlichen Identitäten (NHIs) sowie agentenbasierten Identitäten…. First…
Agentic AI opens door to new ID challenges: Report

Nov 14, 2025 5:49 AM

Tags: access, ai, api, attack, awareness, best-practice, breach, cloud, control, credentials, cyber, cyberattack, data, defense, email, exploit, governance, group, iam, identity, incident, infrastructure, network, phishing, resilience, risk, social-engineering, software, strategy, technology, threat, tool, training, vulnerability, zero-trust

Identity Crisis: Understanding & Building Resilience Against Identity-Driven Threats, the result is a surge of both non-human identities (NHIs) and agentic identities.Key findings revealed:89% of organizations have “fully or partially incorporated AI agents into their identity infrastructure, and an additional 10% have plans to.”Of those polled, 58% estimate that, in the next 12 months, half…
Agentic AI opens door to new ID challenges: Report

Nov 14, 2025 5:49 AM

Tags: access, ai, api, attack, awareness, best-practice, breach, cloud, control, credentials, cyber, cyberattack, data, defense, email, exploit, governance, group, iam, identity, incident, infrastructure, network, phishing, resilience, risk, social-engineering, software, strategy, technology, threat, tool, training, vulnerability, zero-trust

Identity Crisis: Understanding & Building Resilience Against Identity-Driven Threats, the result is a surge of both non-human identities (NHIs) and agentic identities.Key findings revealed:89% of organizations have “fully or partially incorporated AI agents into their identity infrastructure, and an additional 10% have plans to.”Of those polled, 58% estimate that, in the next 12 months, half…
UK Unveils Cyber Security and Resilience Bill

Nov 13, 2025 12:49 AM

Tags: cyber, cybersecurity, government, regulation, resilience

Legislation Proposes More Regulations for Greater Swath of the UK Economy. The British government introduced Wednesday long-anticipated cybersecurity legislation aimed at tackling disruptive hacks targeting critical national infrastructure. Companies that run afoul of the new regulations could face daily fines that amount to 10% of their global revenue. First seen on govinfosecurity.com Jump to article:…
British government unveils long-awaited landmark cybersecurity bill

Nov 12, 2025 7:49 PM

Tags: cyber, cybersecurity, government, resilience

After years of delays, the British government introduced its landmark Cyber Security and Resilience Bill to Parliament, threatening large fines for companies that fail to protect themselves from cyberattacks. First seen on therecord.media Jump to article: therecord.media/british-gov-cybersecurity-law
Beyond silos: How DDI-AI integration is redefining cyber resilience

Nov 11, 2025 12:20 PM

Tags: ai, api, attack, automation, best-practice, breach, business, cctv, cloud, control, corporate, cyber, cybersecurity, data, defense, detection, dns, endpoint, finance, firewall, guide, identity, infrastructure, intelligence, iot, malicious, monitoring, network, penetration-testing, phishing, phone, RedTeam, resilience, risk, service, siem, soar, soc, sql, threat, tool, training, zero-trust

DDI as the nervous system of enterprise security: DDI, including DNS, DHCP and IP address management, is the nervous system of the network. It records every connection, every name resolution and every IP allocation, maintaining the only comprehensive, authoritative record of normal network behavior.By itself, DDI data is simply a massive stream of logs. For…
Beyond silos: How DDI-AI integration is redefining cyber resilience

Nov 11, 2025 12:20 PM

Tags: ai, api, attack, automation, best-practice, breach, business, cctv, cloud, control, corporate, cyber, cybersecurity, data, defense, detection, dns, endpoint, finance, firewall, guide, identity, infrastructure, intelligence, iot, malicious, monitoring, network, penetration-testing, phishing, phone, RedTeam, resilience, risk, service, siem, soar, soc, sql, threat, tool, training, zero-trust

DDI as the nervous system of enterprise security: DDI, including DNS, DHCP and IP address management, is the nervous system of the network. It records every connection, every name resolution and every IP allocation, maintaining the only comprehensive, authoritative record of normal network behavior.By itself, DDI data is simply a massive stream of logs. For…
To get funding, CISOs are mastering the language of money

Nov 11, 2025 8:19 AM

Tags: ciso, cybersecurity, resilience

In this Help Net Security interview, Chris Wheeler, CISO at Resilience, talks about how CISOs are managing changing cybersecurity budgets. While overall spending is up, many … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/11/chris-wheeler-resilience-cisos-cybersecurity-budgets/
To get funding, CISOs are mastering the language of money

Nov 11, 2025 8:19 AM

Tags: ciso, cybersecurity, resilience

In this Help Net Security interview, Chris Wheeler, CISO at Resilience, talks about how CISOs are managing changing cybersecurity budgets. While overall spending is up, many … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/11/chris-wheeler-resilience-cisos-cybersecurity-budgets/
How GlassWorm wormed its way back into developers’ code, and what it says about open source security

Nov 11, 2025 5:19 AM

Tags: access, ai, attack, blockchain, ciso, control, credentials, crypto, cybersecurity, data, data-breach, endpoint, exploit, framework, github, google, infrastructure, law, malicious, malware, marketplace, monitoring, open-source, resilience, service, software, supply-chain, threat, tool, update, worm

adhamu.history-in-sublime-merge (downloaded 4,000 times)ai-driven-dev.ai-driven-dev (downloaded 3,300 times)yasuyuky.transient-emacs (downloaded 2,400 times)All three GlassWorm extensions are “still literally invisible” in code editors, the researchers note. They are encoded in unprintable Unicode characters that look like blank space to the human eye, but execute as JavaScript.The attackers have posted new transactions to the Solana blockchain that outline updated…
Faster Than Real-Time: Why Your Security Fails and What to Do Next

Nov 11, 2025 5:19 AM

Tags: access, ai, apple, attack, breach, business, ceo, cio, cloud, control, cybersecurity, data, defense, detection, dns, endpoint, fintech, framework, identity, infrastructure, Internet, iot, jobs, LLM, malware, network, nist, privacy, resilience, siem, soc, technology, threat, tool, vpn, zero-day, zero-trust

“Security systems fail. When it fails, what do you do?” This critical question from Spire Connect’s Pankaj Sharma set the stage at Gitex 2025 for a conversation with Francois Driessen, the “Human Ambassador” of ADAMnetworks. His core message is blunt: in cybersecurity, even real-time is not fast enough. By the time a threat is detected,…
Faster Than Real-Time: Why Your Security Fails and What to Do Next

Nov 11, 2025 5:19 AM

Tags: access, ai, apple, attack, breach, business, ceo, cio, cloud, control, cybersecurity, data, defense, detection, dns, endpoint, fintech, framework, identity, infrastructure, Internet, iot, jobs, LLM, malware, network, nist, privacy, resilience, siem, soc, technology, threat, tool, vpn, zero-day, zero-trust

“Security systems fail. When it fails, what do you do?” This critical question from Spire Connect’s Pankaj Sharma set the stage at Gitex 2025 for a conversation with Francois Driessen, the “Human Ambassador” of ADAMnetworks. His core message is blunt: in cybersecurity, even real-time is not fast enough. By the time a threat is detected,…
How GlassWorm wormed its way back into developers’ code, and what it says about open source security

Nov 11, 2025 5:19 AM

Tags: access, ai, attack, blockchain, ciso, control, credentials, crypto, cybersecurity, data, data-breach, endpoint, exploit, framework, github, google, infrastructure, law, malicious, malware, marketplace, monitoring, open-source, resilience, service, software, supply-chain, threat, tool, update, worm

adhamu.history-in-sublime-merge (downloaded 4,000 times)ai-driven-dev.ai-driven-dev (downloaded 3,300 times)yasuyuky.transient-emacs (downloaded 2,400 times)All three GlassWorm extensions are “still literally invisible” in code editors, the researchers note. They are encoded in unprintable Unicode characters that look like blank space to the human eye, but execute as JavaScript.The attackers have posted new transactions to the Solana blockchain that outline updated…
Can Your NHIs Withstand a Cyber Attack?

Nov 11, 2025 12:19 AM

Tags: attack, cyber, cybercrime, cybersecurity, password, resilience, threat, unauthorized

Are You Optimizing Your NHIs for Cyber Attack Resilience? When faced with the myriad challenges of cybersecurity, have you considered how to optimize your Non-Human Identities (NHIs) for better protection against cyber threats? NHIs, representing machine identities, are increasingly targeted by cybercriminals in their quest for unauthorized system access. They comprise encrypted passwords, tokens, or……
From Compliance Boxes to Fraud Prevention: GRC Reimagined

Nov 10, 2025 11:19 PM

Tags: automation, compliance, framework, fraud, governance, grc, resilience, tool

Gong’s Tamara Lauterbach on Why Framework Maturity Matters More Than Certification. Frameworks are no longer just about checking compliance boxes; they’re becoming critical tools for governance, resilience and fraud prevention. Tamara Lauterbach, senior GRC specialist at Gong, explains how culture, automation and human insight can enhance framework effectiveness. First seen on govinfosecurity.com Jump to article:…
Generative AI: The Double-Edged Sword of Cybersecurity

Nov 10, 2025 3:20 PM

Tags: ai, cyberattack, defense, resilience, risk

As GenAI transforms cyberattacks and defenses, organizations must strengthen the human layer. Learn how AI multiplies both risk and resilience in 2025. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/11/generative-ai-the-double-edged-sword-of-cybersecurity/
Generative AI: The Double-Edged Sword of Cybersecurity

Nov 10, 2025 3:20 PM

Tags: ai, cyberattack, defense, resilience, risk

As GenAI transforms cyberattacks and defenses, organizations must strengthen the human layer. Learn how AI multiplies both risk and resilience in 2025. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/11/generative-ai-the-double-edged-sword-of-cybersecurity/
CISA’s expiration leaves a dangerous void in US cyber collaboration

Nov 10, 2025 1:19 PM

Tags: cisa, cyber, resilience, usa

Each day without reauthorization erodes the trust, coordination, and shared visibility that have underpinned the resilience of America’s most critical systems. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-information-sharing-lack-of-info-dangerous-op-ed/
CISA’s expiration leaves a dangerous void in US cyber collaboration

Nov 10, 2025 1:19 PM

Tags: cisa, cyber, resilience, usa

Each day without reauthorization erodes the trust, coordination, and shared visibility that have underpinned the resilience of America’s most critical systems. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-information-sharing-lack-of-info-dangerous-op-ed/
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
Spektrum Labs Previews Cryptographic Platform for Proving Cyber Resilience

Nov 7, 2025 6:19 PM

Tags: access, ceo, cyber, cybersecurity, resilience

Spektrum Labs is providing early access to a platform that enables cybersecurity and IT teams to mathematically prove they have achieved cyber resilience. Company CEO J.J. Thompson said the Spektrum Fusion platform makes use of cryptographic proofs to validate whether statements made about resilience are indeed true. The output from those mathematical algorithms provides the..…
Spektrum Labs Previews Cryptographic Platform for Proving Cyber Resilience

Nov 7, 2025 6:19 PM

Tags: access, ceo, cyber, cybersecurity, resilience

Spektrum Labs is providing early access to a platform that enables cybersecurity and IT teams to mathematically prove they have achieved cyber resilience. Company CEO J.J. Thompson said the Spektrum Fusion platform makes use of cryptographic proofs to validate whether statements made about resilience are indeed true. The output from those mathematical algorithms provides the..…